O365 Groups, Roles, and Membership Accounts

Blog Post created by Champion on Mar 25, 2016

When attempting to provide everyone in my tenant permissions to very public content, I ran into trouble understanding the various options I have. Traditionally when on premise, We would grant the All Authenticated Users access to home pages to make sure all users can have access. In O365 and SharePoint Online there are new groups available but each has a slight differentiating attribute. Here they are and what defines them.






All authenticated and guest usersc:0(.s|true
Everyone Except External UsersAll users except shared usersc:0-.f|rolemanager|spo-grid-all-users/{GUID}
All Authenticated UsersAll user accounts which can be recognized by SharePoint Online, both for internal and external. (Some tenants didn't show this option in the picker)
All Users (Windows)User accounts from Federated domainsc:0!.s|windows
All Users (Membership)All user accounts from Office 365 Online Servicesc:0!.s|forms:membership